exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-28026

почти 5 лет назад

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-28026

почти 5 лет назад

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-28026

почти 5 лет назад

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, r ...

CVSS3: 9.8

EPSS: Низкий

GHSA-gf8c-vh34-8jv5

больше 3 лет назад

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.

CVSS3: 9.8

EPSS: Низкий

BDU:2021-02763

больше 5 лет назад

Уязвимость функции spool_read_header() агента пересылки сообщений Exim, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю обойти ограничения безопасности

CVSS2: 9.3

EPSS: Низкий

openSUSE-SU-2021:0677-1

почти 5 лет назад

Security update for exim

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-28026 Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.	CVSS3: 9.8	4% Низкий	почти 5 лет назад
CVE-2020-28026 Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.	CVSS3: 9.8	4% Низкий	почти 5 лет назад
CVE-2020-28026 Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, r ...	CVSS3: 9.8	4% Низкий	почти 5 лет назад
GHSA-gf8c-vh34-8jv5 Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.	CVSS3: 9.8	4% Низкий	больше 3 лет назад
BDU:2021-02763 Уязвимость функции spool_read_header() агента пересылки сообщений Exim, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю обойти ограничения безопасности	CVSS2: 9.3	4% Низкий	больше 5 лет назад
openSUSE-SU-2021:0677-1 Security update for exim			почти 5 лет назад

Уязвимостей на страницу